A vulnerability in Eterm allowed it to open a terminal on :0 if
the environment variable was not set or the -display option was
not specified, which could be used by a local user to hijack X11
connections (CVE-2008-1692).

The updated packages have been patched to correct this issue.
_______________________________________________________________________